This forum is now a read-only archive. All commenting, posting, registration services have been turned off. Those needing community support and/or wanting to ask questions should refer to the Tag/Forum map, and to http://spring.io/questions for a curated list of stackoverflow tags that Pivotal engineers, and the community, monitor.

AnnouncementAnnouncement Module

Collapse

No announcement yet.

Spring Security Authentication Followed by Siteminder AuthorizationPage Title Module

Spring Security Authentication Followed by Siteminder Authorization

May 14th, 2013, 02:52 AM

I'm currently working on a project where we have components for Authentication already written in Spring Security+Spring MVC, and now we're trying to integrate Siteminder into the product. Now, we have salted passwords stored in our DB, with user-specific random salts, and Siteminder seems to be struggling with identifying/authenticating with this scheme.

One of my friends suggested that we go ahead using our custom Authentication mechanism that we're already using, and use Siteminder only for the Authorization. Any idea if this can be done?

I checked the forums and came across quite a few cases of the reverse scenario (i.e authenticate with siteminder, authorization with spring security, and even read this page: http://static.springsource.org/sprin...e.html#preauth ), but it doesn't seem to provide any pointers to how to do the reverse